Description
An authenticated user can use functions of /ISDFPS/ALE_SET_SYSTEM_STATE to which access should be restricted. This could lead to communication problems between distributed systems.
Available fix and Supported packages
- EA-DFPS | 600 | 600
- EA-DFPS | 603 | 603
- EA-DFPS | 604 | 604
- EA-DFPS | 605 | 605
- EA-DFPS | 606 | 606
- EA-DFPS | 616 | 616
- EA-DFPS | 617 | 617
- EA-DFPS 600 | SAPKGPDD26 |
- EA-DFPS 603 | SAPK-60315INEADFPS |
- EA-DFPS 604 | SAPK-60416INEADFPS |
- EA-DFPS 605 | SAPK-60513INEADFPS |
- EA-DFPS 606 | SAPK-60613INEADFPS |
- EA-DFPS 616 | SAPK-61608INEADFPS |
- EA-DFPS 617 | SAPK-61706INEADFPS |
Affected component
- IS-DFS-BIT-DIS
Distributed Systems
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/2025390
